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MCI MAIL: The Adventure Continues 


You really have to hand it to those folks over at MCL. First 
they tackle Ma Bell and now they're going after the US. Postal 
Service! MCI Mails slogan, “The Nation's New Postal 
System,” is printed on every bright orange envelope that they 
send through, you guessed it, U.S. Mail. 

On this system a user is assigned a “mailbox” that he can use 
to send and receive mail. Sending is done either electronically, 
thatis, to other people with MC] mailboxes or through the post 
office, which covers everybody else in the worid. The first type 
af letter will cost you $1 far the first three pages while the 
second type is double the cost. It's also possible to send an 
overnight letter ($6) or a four-hour ketter ($24) to some places. 

The purpose of MCI Mail is to stimulate the use of electronic 
mail by making it more accessible to the average person, For 
thal we must pive them credit—anybody can get an account on 
this system! There is no start-up fee and no monthly fee of any 
kind. To ge1 an account, all you have to do is call them—either 
by voice or data. If you call by data (see page 5 of April issue of 
2600 for numbers), youll have to enter REGISTER as the 
username and REGISTER gs the password. The rest is self- 
explanatory. After a couple of weeks, youil get in the mail 
(regular mail, that is) a big orange envelope that has, among 
other things, your password. With this info, you're now free to 
log onto the system, look for people you know, send and 
retrieve messages, read all of their help files, or even hop onto 
the Dow Jones News Service (watch it thongh—/har can get 

. pretty expensive!) 

The system 15 set up on a necwork of Vaxes throughout the 
country. They've been operating since September 1983 and 
claim to have over 400.000 subscribers. Many of these are 
actually subscnbers to the Dow Jones service, who are 
automatically given MCI Mail accounts whether they want 
them or not. 

While the rates arent overly expensive, theyre certainly not 
cheap. Mailing regular letters is much cheaper and often just as 
fast since not every MC] Mail user checks their mailbox every 
day. Apar from that, though, there are many problems with 
the system as it stands now. For one thing, it can take forever 
getting on it, particularly through the #00 numbers. When you 

- finally do get a carrier, you should get a message like this after 
hitting two returns: l 
Port 24. 
Please enter your user hame: 

Enter the username you selected and the password they 
assigned you. it should say, “Connection initiated.. Opened.” 
From that point on, you're in. 

But the system will often appear to be bogged down. Often 
you have.to hit twenty returns instead of two. Sometimes the 
system won't let you in because all connections are “busy”. 
Ofther times it will just drop the carner. Real mailboxes dont do 
that. 

Another thing that willdrive you crazy are the menus. Every 
time you enter a command, you pet a whole new menu to 
choose from. If you're at 300 haid, this can pet pretty annoying, 
especially if you know what all the options are, There are two 
ways around this: get the advanced version, which allows you to 
enter multi-word commands and even store some files, at a cost 
of $10 per month, or simply hit a control ©. 

One part of the system that works fast and is very convenient 
is the user info. As soon as you type the command CREATE to 
begn wating a kher, you'll be asked who you want to send it to. 


Enter either the person's last name, first initia] and last name, or 
username (which is anally one of the first two, but which can 
be ahnost anything the user desires). lmmediately, you'll get a 
list of everyone woth that name, as well as their city and state, 
which often don't fit properly on the line. There are no reports 
of any wildcards that allow you to see everybody at ance. (The 
closest thing is *R, which will show all of the usernames that 
you Te sending to.) It's also unpassible fora user not to be seen if 
you get bis name or alias night, it's a good free information 
retreeval system. But theres more. 

MC] Mail can also be used as a free word processor of sorts. 
The system will allow you to enter a letter, or for that matter, a 
manuscript. You can then hang up and do other things, come 
back within 24 hours, and your words will still be there. You 
can conceivably list them out using your Own printer on a fresh 
sheet of paper and send it through the mail! all by yourself, thus 
sparing MCI Mail’: laser printer the trouble. You could also 
shate your account with somebody else and constantly eave 
unsent drafts for each other. Again, they have to be retneved 
within 24 hours. 

Yet another way of getting “free” service from these people is 
ta obtain many different accounts. There doesn't seem to be any 
kind of a bot an this and since each account comes with $2 of 
free messages, a few accounts can get you quite a bit of free 
service. And, of course, there's ne change for receiving messapes 
on any of these accounts. 

2600 has kared of several penetrations omo MCI Mail by 
hackers. This isnt really surpnsing consklering: {a) there are 
multiple usernames, i.e. John Smith's usemame woukl always 
default to JSMITH, which means that several passwords can 
work for one usermame: (b) all passwords seem to follow a 
similar pattern—8 characters with the odd-numbered characters 
always being consonants and the even-numbered ones always 
being vowels—any true hacker would obtain several accounts 
and look for any correspondence between the random password 
and the account number everyone is assigned; (c) MC) Mail 
doesn’t hang up after repeated iries— the anly thing that will 
make it disconnect intentionally is inactivity on your part. 

But by far the biggest blunder that MC] Mail has made is not 
found on the system. [t les in their bills. There is no carry-over 
From month to month! If you get billed for $É one month and 
you dont pay it, then proceed to use the system for $3 more the 
next month, your next bill will only show the 33! The 38 has 
vanished! (This is by far the dumbest mistake we have ever 
reported in these pages.) 

You'll find quite a few unanswered questions in your travels 
through MCI Mail, which you can try te solve by reading the 
HELP files or by sending a free message to MCIHELP. It 
usually takes them a couple of days to respond 10 you instantly, 
however. 

There are some software lapses as well. The system seems ta 
be patterned largely after GTE Telemail, bur it never really 
reaches that level of clarity. A small example can be seen in the 

“scan tables, which have a heading of From, Subject, Size, etc. 
On outbound messages, the name oi the person you're sending 
fo appears under the From heading! Pretty silly. l 

MCI Mail shows every indication of overspending with a 
passion. Free messages, free accounts, sloppy programming, 
toll-free dislups, single sheets of paper (like their bills} sent in 
huge envelopes, etc, Eriher they're very optimistic oul there or 
they re very naive. : 

(MCI Mal can be reached at 80046240677.) 
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Look Out For Sidney! 


Ean baa irg Fir peat 

The city of New York has come up with a new way to fight 
parking scofflaws. [1's called SIDNEY-—Summons Issuing 
Device for NEw York. It's a handheld computer terminal that 
will be able to get information about license plate numbers that 
art “suspected” of being attached to scofflaws. 

The device weighs less than five pounds and looks rather hke 
a Calculator. It would ask whoever was operating it ta enter the 
color, make, model, registration expiration, location, time, and 
nature of violation. SIDNEY would then pront out a water- 
proof parking ticket and at the same time check its 10,000-plate 
memory to see if the license plate belonged to a scofilaw or a 
stolen car. An appropriate message would then be flashed on 
the screen. Details of each ticket issued would be stored in the 
device and entered automatically into the main computer 
system each day. 

There hasn't been much talk circulating about what will 
happen when these things get stolen and fake tickets are handed 
oul by the thousands. [t is expected that these creatures will be 
tumed loose into the hands of meter-maids within [wo years. 
The contract for producing SIDNEY has tentatively been 
awarded to Citizource of New Jersey. 


Bell to AT&T: Get Lost! 
Amoa Pren 

One of the so-called “Baby Bels” is displaying its indepen- 
dence from its fonmer parent — ATAT. Southwestern Bell says 
i's chosen GTE Spnnt to provide long-distance telephone 
service for its Houston operation. 

By using GTE Sprint instead of AT&T, Southwestern Bell 
figures to save about fifty thousand dollars. Long distance 
service from Houston currenify costs the former Bell system 
uit about £300,000 a year. 

CTE Sprint will replace AT&T in Houston in mid-August. 


Five Arrested in Phone Fraud 
The hew Werk Timne 

Five Manhattan residenis wert arrested last month on 
charges of defrauding the New York Telephone Company by 


. making more than 1,500 illegal telephone calls, mostly to the 


Dominikan Republic, in 2 three-day period. 

The Manhattan Distroet Attemey’s office said the suspects 
used “bluc boxes” to make the calls. The five were charged with 
possession of burglary tootis and theft of services. One was also 
charged with selling a stolen credit card number to an 
undercover Investigator and using such numbers te make calls 
for other people. He could get four years-for his trouble. 

Supposedly, the suspects were offering neighbors low-cost 
long distance calls, however they frequently charged more than 
the cost of Jegitimate calls! 


An Official Crackdown on Hackers 
Combine Mira. Supinen 
According to Rep. Wiliam Hughes (D-N.J.), computer 


„ Crime is increasing by kapsand bounds. Speaking on the House 


floor, Hughes sad, “It's time we recognized that computer 


-=> ‘hackers who intrude into data banks are not just mischievous 


kids looking for fun. They're engaging in egal activities which 
pore potentially serious threats te our society.“ 

He urged quick passage of the Counterfeit Access Device and 
Computer Fraud and Abuse Act of 1984, being sponsored by 
him and eight mher House members, including Democrats and 





Republicans. 

The House Judiciary Committee took a step towards making 
ita crime for hackers to break into systems such as TRW by 
adopting anameniment by Rep. Dan Glickman (D-Kan.}. His 
proposal would make it a misdemeanor to raid computer tikes 
containing private credit histories or banking information. 

A, subcommittee staff Lawyer said the bill would close 
loopholes in existing federal and state laws by making it a 
felony offense to access a computer without authorization and 
with intent to defraud, if that act enables the perpetrator to 
obtain anything worth at least $5,000 overa one-year period or 
any Classified goverment mlormation. 

The bill is expected to come before the full House either late 
thas month or in early August. 


Pay Telephones Deregulated 
2607 Were Bee rv ice 

On June i5, the FCC decided to allow just about anybody to 
get involved in the pay phone business. Up until naw, pay 
phones have been provided by whichever local company serves 
the area. Bui with this new ruling, all kinds of new companies 
will be seen. Im fact, some phones may even have different 
prices! And, of course, it's to be expected that each of these new 
types of phones will have their own quirks and bugs. Look for 
Matnx, Tonka, and Paytel phones in the near future. 

Of course, there will be disadvantages, Same phones will 
only be able to dial locally. Others won't be abt to reach 911 or 
information. Many will probably be rotary and most will 
certainly break dawn mare frequently. Still, diversity 15 what 
makes this entire field so interesting. 


“You Must First Dial a One...” 
Asocia Pes 

As of July Ist, 3 million customers in New Jersey had ta start 
dialinga one before area codes when calling long distance. This 
leaves 202 and 514 as the last remaining areas in the country 
that don't have to do this. 

Company officials say the new system was introduced to 
provide 152 more exchanges to meet increasing customer 
demand. Under the new system, New Jersey Bell will begin 
using certain area codes as telephone exchanges. They will 
avo] using area codes of neighboring states to prevent mass 
confusion. 


Information News 
Cicer Fated ees, Sat LI 

Starting this month, MECI will connect subseribers to long 
distance information just like AT&T does. And, like AT&T, 
MC] will offer two free information calls per month, provided 
their service is used for at Kast two long distance calls in that 
same month. After that, they will charge for a call ta 
information, just like AFAT doest So what's the difference? In 
the price, of course. AT&T charges a heity fitty cents for each 
call io directory assistance, while MCI wall be under-selling 
them with an affordable 45e. Good cl capitalism. 

[in another development, a computer program to help find a 
telephone number without complete information from the 
caller has been patented by Richard H. Boivie for Bell Labs. [n 
cases where the caller can give the. information operator the 
name of the person being sought, bul is unsure about the 
spelling, the computer will trace alternative spellings. It will 
also sort ihrough different addresses for the most likely 
candidates. 


~~, 


Anew device has juet been invented. It's called the “clear box”, Mean 
be used throughout Canada and through rural United States. 

This interesting gadget works on “post-pay” payphones, in other 
words, those phones that don't mquirt payment until after the 
connection has been established. You pick up the phone, get a dial 
tone, dial your number, and then put in your coms after the person 
answers. If you don deposil money, you can't speak to the person at 
the other end, because your mouthpiece is cut off—but not your 
carpice. (Yes, vou can make free calle 1o the weather, ete. from such 
phones, } 

In order Lo bypass this, al! one hae todo is visit a nearby ekectranics 
store, get a 4-transistor amplifier and a telephone suction cup 
induction pick-up. The induction pick-up would be hooked up as it 
normally would to record a conversation, except that it would be 
plugged inte the omp of the amplifier and a microphone woukl be 


INTRODUCING THE CLEAR BOX! 


hooked to the input, So when the Lid tala the caller could speak 
through the little microphone instead. His voice would pa po through 
the amplifier, out the induction coil, and inte the back of the roti 
where it would then be broadcast through the phone lines and the other 
party would be able to hear the caller. The clear box thus “clears” up 
the problem of not being heard. — ie hai 

The lint will not cut off after a certain amount of time—it will wait 
forever for the coins to drop in. Aas f 

Many independents arc moving towarda this kind af stupid payphone 
system. For one thing, it’s a cheap way of getting DTF {diel tane first) 
service. H doent require any special equipment. That type of 
payphone will work onany kind ofa phone line, Normally a payphont 
line is different, but this is justa regular phone lint and it's set up so that 
the payphone does all of the charging, not the CO. With the recent 
deregulation of payphones, this kind of a system could become very 


popular. 


LETTERS FROM OUR READERS 


6) 14 / id 
Dear 2; 

A few exchanges in my vicinity have recently upgraded their 
switching equipment, On 11/5/83, 914-268 switched from a 
SxS to a Northern Telecom OMS100. 914-634 & 638 alsa 
switched from a No. 5 Crossbar to a DMS5100 on 6/9; Bd. 

Through trashing, 4X. scanning, and “social engineering,” 


1 have found out the following: The suffix 9601 isa “venfication” - 


recording. In 268: 9903, 9906, $600, 9911, 90/2, & 9613 are all 
VANOUA TECOCINgS, 
Another neat fonction on DMS 100 is thal you can hear the 


_ ME tones after most calls. NY Telco calls this the sound of their 


new system helping io serve you better. 

Also, these CO's are under N¥ Telco jurisdiction. Yet, they 
bought from Northern Telecom DMSO instead of a “nice” 
ESS system from Western Electnc. Could this be the break-up 
at work? 

This equipment offers ESS functions such as call waiting, call 
forwarding, dial-tone-first fortresses, etc, My question is: What 
type of toll-lfraud equipment i standard or optional for the 
DMS 160? Does tt recon) everything hke a pen register? Etc... 

. Curious 
Dear Curious: 

First off, our compliments on your ability to notice the 
changes that most people miss. As far as your 9901 discovery, 
many exchanges in your area have been known to do that. If 
vou dial XXX OGL, you'll hear a computer read the exchange 
and area code. lt doesnt really serve mach of a purpose, But 
interesting Lhings can always be found in the 9930% area, if your 
company Uses it. . 

Concemmg ihe DMS100, it is the break-up of the Bell 
System to an cxtent. New York Telephone has been buyme 
equipment from Northern Telecom for some time now. But 
since the divestiture, they've becom à little more flagrant about 
it, You'll see quite a bit more experimentation with products 
from other suppliers in the near future. The DMSIOO isa very 
good switch, but it’s got certain «drawbacks as far as phone 
phreaking is concemed. It dots have ceriain “devices”. These 
don't work exact like a pen register, but they wind up having 
the same clfect. What is done is ihis: if you happen to send a 
200 Herts tone down the line, DMS 100 will make a computer 
record of whatever you did in the surrounding time. They 
automatically investigate your line if this is detected more than 
an undetermined amount of times. This is where the pen 
register comes in. The system is already equipped to handle a 
pen register through a special box in the exchange that’s set up 
entirely for that purpose. This box ties into then automatic 
surveillance equipment. So it’s kind of a two step process, but 


ihe DMS 100 makes it much easier, 

St far, wé haven't been able to find any advantages (or bugs) 
ina DMS160, We will continue to look, though. Regarding the 
ME tones, they're simply not being filtered as they are in most 
places, The GT D45 (made by GTE) and the DMS 100 both, asa 
rule, only filter about ten percent of the MF tones. They also 
don't filter out rotary outpuises, whenever they exist, Perhaps 
it a way of cutting comers. 

DMS 100, as you know, sounds just like ESS. About the only 
way you can tell if youve dialed into one is if you hear 
absolutely no chicks or pops when the party answers, as you do 
with ESS, crossbar, and step. [nsiead you heara real faint, mild 
tick. When dialing out on one, you won't hear any clicks either. 
Dear 2600: 

[hear you people are keen on answering people's questions, 
so answer me this: What ever happened to that operator who 
was 50 damn nasty that she cefused to call that ambulance for 
this guy's dying mother just because be used a couple of cuz 
words on the telephone? By the way, the lady died a horribie 
violent death, [ think. (1 think the operator didn't die yet.) Oh 
yea, Lalso think that there was some sorta lawsuit against the 
nasty-oppy or the telco or someone. 

RC 


Bear RC: 

The incident you te referring to took place a few months ago. 
ht happened in Dallas, Texas and it concerned a man who was 
trying to get an ambulance for his mother-in-law who was 
having a massive heart attack, Not only did the operator refuse 
to send an ambulance until ihe women herself got on the phone, 
but her supervisor also got on the line and said something te the 
effect of, “Sir, if you don't quit cussing out the operator, I'm 
going to have to hang up on you.” 

The operator was fired and the supervisor demoted. But beth 
are currently chiming that they were only following orders. The 
city of Dallas allegediy said that at all costs an ambulance 
shouldn't be sent out unless it was an extremely life threatening 
silualion. Anonymous people have even come forward and 
claimed that botmuses were offered to those who sent the least 
amount of armbulances out! 

We should say that thia doesn't involve the phone company, 
since it wasn't their operators who handlet this call. Any 
lawsuits would be against the city of Dallas, in all Sikehhoad. - 
li* also interesting to note that there i notl } service in Dallas. 
Residents there dial 744-4444 instead. Perhaps an advanced 911 
service might cut back on the fake calls they're supposedly 
Plagued with since such systems immediately trace back the 
number calling and do an mstant CNA on it. 

(Write to 2600, Box 752, Middle Irland, A IMGT or ATCT Moll ff}; 2600.) 


- CADI 


2600 


TRW Information Services is America's largest credit 
reporting Institute, containing the credit histories ef over 90 
ee ae rete tha Td bel Sears, 

ecently it was repo ta onging to 

Roebuck, & Co, was stokn. = and the media are currently 
circulating several conflicting reports about the use of the 
account, Some reports insist that the account was never used 
Ulegittmately. Cihers say that ‘criminals’ wed the account to 
Pillage credit cand numbers to illegally buy goods and services 
while Knowing the account limit. Another account of the 
Incident(s) says it was merely hackers exploring a very 
interesting system. It seems hard to believe that hackers 
managed to infiltrate TRW, since the system is basically user 
spiteful, Hut they srn to have pulled it off. 

Once the subseriber initiates 4 connection with one of the 
many dial-ups, located in most major cities, the system will 
identify itself with TRW. It will then wait for the subscriber to 
send an appropriate answetback (such as a contro HGN. Ono 
this has been done, the system will say CIRCUIT BUILDING 
IN PROGRESS along with afew numbers. After this, it ckars 
the screen (Ctr}-L) followed by a cantrol-. Once the control- 
is sent, the system is ready to accept the subscriber's request. 
The subscriber must first type a 4 character preamble which 


identifies the larca of the subscriber's account. For 
example: 
TCAL - for certain Caltfonnia & vicinity subserfiers 


TCA? - n second TRW system in Callfomis 
TAT] - their New Jersey database 
TGAI - iheir Georgia database 

The subseriber then types a carnage return (followed by an 
optional 3 line feeds). On the next line, he must type his 3 
character option. Most requests use the RTS option. GPx, 
REx, and a few others exist. Some of these, such as RTA, 
Tetum you with an error saying that this option is used for crectit 
bureau collection nary only. TRW will accept an A, C, or S 


as the third cha 
After the option (RTS), as must be skipped, and then a? 
digit subscriber code 15 t in. The first two digits represent 


the region in whith the barie located and the subscribers 


ined . fespectively. 

ae Pmi > Takk [l 
Hiirt dipti) imed digh) 

1 - TRY Ertem Regha 0 - FPabik Bord 

2- TEW Mkh Regie i - Bank 

3 - TEW Wegen Hegian 1 - Beek Cred Card 

d- begets foe Erker Coston J - Ketel 

a. 4- Craii Card 

é - Other cred prda 3- Loan Fimme 
within Errem i - Saka Fh 
Cerca Sukarin 7 - Creal Unis 

T - Others withle Western Region See eae 

B - Others withle Wester Region $- Service & Profe 


Using the tables above, it is evident that the stolen Sears 
Password from Sacramento must begin with a 33, identifying it 
as from the Western Region and as being a retail store. 

Once the subscriber enters his 7 digit subscriber code which is 
printed along oo the reports, he then appends a 3-4 character 
password ininediately after i. (In the Sears example, the whole 
thing was: 3319]29NXK Thi code has allegedly been floating 
around hacker circles for at least two years!} Following this, be 
must type a space and then the full last name of the person he 
wants a report on. This is followed by another space and the full 
first name. After this comes yet another space. 

Now the subscriber has 3 optional parameters. He can just 
type 3 pends after the first name and space or be can fill them 
in. The first period can be replaced by the person's middie 
initia), ihe second by the spouse's first initial, and the third by 
ans ora J which indicates Senior and Junior respectively, 

The last of the three parameters ts followed by a comma. This 
is immediately followed by the house number and a space. After 
the space, he then places the first letter of the street name. For 
„he would type M for Main Street, a 7 fora P.O. box, 
or 3 for 32nd Street. Thos singl character is then jollowed by 
the 5 digit z pee (mandatory) and a final comma. After the 

ip, he would hit carriage return and an optional line feed. 
ete are some special conditions which can apply to the 
house number—if an inslitution such as a school, motel, or 
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hoepeal is piven as the main address, 33333 would be used as 
the house number. When an address is Genera] Delivery, 44444 
would be the house number and G would-be the street name. 
Others: U.S, Aa Force, 55555 A: U.S. Army, 66666 A: Ue ~. 


Coast Guard, 77777 C: U.S, Marines, $8588 Mi: US, Na 
79999 N.} 
Assuming the subscriber is from a California business 


and he is requering id aia ington Sauth at 3 Wian 
Street, Anytown, he would type the following atter 
the contre: 

TCA? = [This identifies the subscriber as Na hd eens CA) 
RTS 3325252 ABC SMITH WINSTON .. 

In this case, the subscriber caer was ABC and the account 
number was represented by JIZAXKX. 

Ad this stage, he can request the PET i pantat by typing a 
terminating controlS or he cao computer some 
information that it will then record Dis the account. This is 
known: as using the second ine, which is entirely optional. The 
first option that can be specified here isa lous address. This 
can be done by typing F- followed by the house nomber, a 

, the frst letter of the street, another space, and the full 
Zip. For cxample, if Mr. Smith previously lived at 2600 Pm 
Steet m New York City, the subscriber would t ipe the 
following: P-2600 F 10001. He can then type a cema after this | 
aml move onto another option. lf Mr. Smith had another 
previous address, the subscriber can enter it in the same fashion 
as above (after the comma) if be amits the P and the dash. This 
is followed by a comma also. He can then enter in Mr. Smith's 
Socal Secunty number in the format of $-1234567890. If this is 
followed by a comma, he can then enter A-age or ¥-year of 
birth (4 digits, e.g., 1964). The subscriber can next enter in 
information telling how much money Mr. Smith has requested 
and/or on what ee ii of account. This 15 done by typing T- 
followed by a two t account type, a J digit terms, and a3 
digit amount cede. For instance, for a credit card account 
{which happens to be #18), with a Limit of 3100 wel which” ~ 
being financed for 24 (024) months, be would type: T- 1802400. 
This infarmation will show up as an inquiry under the 
subscriber's name on Mr. Smiths account. 

There is one final option on ine 2 which prints a beading at 
the top of the page (TRW supplies pre-printed fons with 
“naee” columnas}. If the subscriber cannot afford te buy their 
paper, he would probably type H-Y to get the heading. Fhe last 
option on line 2 i$ followed by a comma, carriage retum, and an 
optional line feed. For example: 
TCA 
RTS 330xxxxABC SMITH WINSTON ..., 3 M S003, 
P-2600 E 1006) 15915 MM S8162,5-1235456/89), Y-1984,7T-1 0020081, 
This can tien be finally entered by typing a control-S. 

But wait! That's not all. The subscnber has one more option. 


He can specify the person’s employer. Let's suppose that Mr. 


Smith works for N¥Teleo Secunty ai 1065 Avenue of the 
Americas in New York City. The subscriber wouk? then : 
E-NYTELCO SECURITY /1095 AVENUE OF THE AMER; 
NEW YORK 10036 

After this he would enter the familiar carriage return ard 
optional line feed. (TRW emphasizes to their subscribers that 
this area is for the name and address of the employment only, 
not occupation of source of income. “De not use terms such as 
"housewife, ‘retired ,**welfare’ or Beh hag which could be 
considered damaging to the applicant," a special waming 
reads.) Since this is the last bit of information that the - 
subscriber can enter, he is now forced to type the inevitable 
controi-s. 

The fest line of the actual printout sends the number, 
the date, the time, the port number, and the H; ¥ (7). It will then 
print the person's address and their employer. After this il 
should print the person's actua! credit history. Each individu ~ 
account entry takes up 2 lines. In the first line, the accou. — - 
profile, subscriber's name and TRW account number, their 
association cade, and the wkdividual’s account number with the 
subscriber are listed. The å on the left is the account profile. A ` 
means that the subscriber (SAKS FIFTH, as an examek) 
tracemitted this information automatically from their computer ,. 
{as opposed to an M, which means that the subscriber manually 
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pr. d forma with the info). The position of the A (or bef) 
indicates a positive, nonqated, of negalive rating (P/N) of 
the account, In ihis example, the A is under the P, therefore it 
reflects positively upon the accoum. The person has an 
account with Saks Fifth Avenue. Saks’ subscriber mmber 
on TEW ig 1347515. The person's account number with Saka 
is 26000000. 

Om the second line of each entry, the account stanis, date 
(last) reported, the date the account was opened, the type of 
account, Lhe credit limit, current balance, and a credit profile: 
are listed. For exarople, on the second line of the Saks entry, 
CURE ACCT indicates that it isa curently active revolving 
(REY) charge (CHG) account that waa opened in October 
M0. The account has a S6700 credth limit and as of April 5, 
FR the person had a $55 balance on the account. The C's 
and dashes indicate how the person pays the account. In 
March (one month prior to the balance data af 4-4), the 
account was paid on time, In February, bwo months pror te 
the balance date, the account was also paid on time. In 
January (3), the account was thirty days past due (173), 
2760, 3-90, etc. }. In December, the account was not reported 
by Saka as indicated by a dash. In October, the accounl was 
sixty days past duc. Court judgments, tax liens, and aiher 
interesting tacts are also recorded. 

The person may also have a 100 word or less stavement in 
ihe file explaining certam entries in their account, (There ia 
also another TRW service for business reports {similar to 
Dunn & Bradstreet} which has an entirely different se of 
spbscriber codes and passwords, as well as access procedure.) 

TR doesnt like to be held up for anyone, Therefore, if 
the subscriber vegetates for more (han a few seconde fie., he 
isp Aer sending por receiving anything), TRW willabrupihy 

RVICE INTERRUPTED; PLEASE REDIAL (EM) 
as it logs hin off. Incidentally, any information that the 
subscriber types on lines 2 or 3 (Le. age, social wearily 
number, employer, che.) is automatically recorded on that 
person's file, Any previous information on the option 15 
discarded (in most cass), 

Technically, ifa hacker hacked oul an account belonging 
toa supreme court or other such institution, he could use the 


F-optien to hack out the code for JUDGMENTS, TAX. 


LIENS, and other neat things. He would then be able to 
modify anyone's account to report them bankrupt or that a 
padgnent was handed down. 

Hacking passwords 5 still reported to be very cosy, Assuming 
that someone is trying ta guess è password to a JXAXAXA 
acco, the following could be done: 

TCAI 

RTS “OROGAAA (retum, controls} 

and the syste stsponde with: 

+a cy INVALID SECURITY PASSWORD 

and the hacker types: 

TCAI 

RTS 3000p AB (return, conirol-8) 

and the system responds with: 

? + '* FORMAT ERROR 

The hacker has correcily guessed the password—it accepted 
Ihe password but didn't find a mame field. Since account 
numbers are very dasy to get ahold of the password is the 


only real challenge. That, and (he fact that the system. 


operates on half dupiex, even parity, 7 bits, and 2 slap bits, 
which might catch a few by surprise, 

Allaccounts can de reports on anyon in the United States 
he ss a file, Forexampk, ifa California accoum requested 
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TTA 

RTS 1A34367NEC SHITH WINSTIN . 

PREBE 19081, L313 N Salge ERN 
RIELO SECURITY/1095 AVENUE OF 


R/NEW YORK | 
{5:20:82 As A SMITH TER 
NSTON WYTELDO SECURI 
et o 1 Tee MNE OF TE NER 
LOS ANGELES CA SBAI NEM YORK | 
R MAME SBR $ ROON ACOA # 
PSE EY Bon we ERS “uc 
COMMENT EPT DPEN 


-—-FILE (DENT: Sik IS 12356709 SPOUSE INIT I6 J YOE 19 i% 


ni D DP D D Ye DBD p 


n T RE: 
tab 


A BOA 30i 5 1234 ROSRRGES 
TOG NEW I~ AUT 4 A188 
SPHE 3118258 fad 
ea er, on ai $100 
CURR RECT 4-0 ST BE EV septa #1213 
SERRS 3313842 8 gem 
CURR ACCT 373 it-t ISC 14 $10 
Fintai S273 1 
CURR ADCT 34-84 3-82 CHE PEV $1088 s i-i- 
BAY CO Jaig 1 ES ee 
CURR ACCT 4-84 B-51 CHE REV -3100 $28. 4-1b-f4 

alið i ea apie ans 
ACT CHE REV $308 $153 2-05-04 
J i ROBINSONS MHS 8 CEROREOR 
ATT S-A ee OB REV sia so 34 
CARTE BLANCHE Cas i 


GAR ACT [eda D CRE 1 $140 fiH} le-dl-83 


COLCCEELECCEC 
“CCCECCOCE 


MEE 


CEET 
FAHNEN 


-HT TNE FILE VARIATION: ZIP 15 SMBS /0THER FILE IDENT: S88 15 12333333, 


da person in New York, the system would simply A 


switch over to its New Jersey database to accomodate the 
equi. A few etes though, such as Tcnnesstr, have 
goverment control over credit information. Thus, peopk 
From that state carmo be found on TRW., Can pou be? 


NID INIT IS 2,SPRSE INIT i$ § 
CITIBANK 


—--—END 


Foto 


1791556 | || 
CURR ACCT 2-83 5-78 JE Rev -s1 $3 2-31-42 
SAKS FIFTH i af al 
a AccT 4-B4 0-88 Ge Ev serae 5 H cci-caceatt- 
OA ace B-A3 5-04 GE a LWN $a 12-3 cecce 
Gei er {2-83 n, oe, REV $1500 #1275 12-15-83 
SCR CT B-A? UNKN CHG REV -40a $8 coc-eerccccee 
CURR ACCT 1g- 16-y CRC 24 $1508 
SECURITY PACIFIC MATL 3110954 È 
„CURR ROCL, le-te D-Al ERC Rev saga 8 HH pcr 
CURR ACCT 4-4 6-81 CAC REY $2508 $65 4-25-64 DCCCOCECCCLE 
HESAN 2 aa 
A Act le-a3 ibr ORG 1 s9 SOF 12-31-83 cec 
WESTERN ALALINES 
PATD ais 7-82 iir CR Rev $1200 
CURR ACCT 1 2 ADIERAN ITET 12-31-83 
EREAT WESTERN S EL A PEENED 
AET 1976 {S74 aC spyd 
A AFFILIATED CREDIT è 
ia de DNK DNK -4100 
TMRITRY 11-22-43 
MAY Ci 3370519 
IN eee SE 
bo im ; yil 
Fler INTERSTATE SETAE? 2 SL AORRR ROARED 
PAID SATIS 7-82 UNKN CRC REV saoe 
RE OC widen ú 
$2080 STATE TAY 


